CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Cisco®
  5. 300-710

Free 300-710 Exam Braindumps (page: 4)

Page 4 of 66
PDF with 325 Questions

What are two application layer preprocessors? (Choose two.)

  1. CIFS
  2. IMAP
  3. SSL
  4. DNP3
  5. ICMP

Answer(s): B,C


Reference:

https://www.cisco.com/c/en/us/td/docs/security/firepower/60/configuration/guide/fpmc-config- guide-v60/Application_Layer_Preprocessors.html



An engineer is tasked with deploying an internal perimeter firewall that will support multiple DMZs Each DMZ has a unique private IP subnet range. How is this requirement satisfied?

  1. Deploy the firewall in transparent mode with access control policies.
  2. Deploy the firewall in routed mode with access control policies.
  3. Deploy the firewall in routed mode with NAT configured.
  4. Deploy the firewall in transparent mode with NAT configured.

Answer(s): C


Reference:

https://www.cisco.com/c/en/us/td/docs/security/asa/asa96/configuration/general/asa- 96-general-config/intro-fw.html



An engineer must configure high availability for the Cisco Firepower devices. The current network topology does not allow for two devices to pass traffic concurrently. How must the devices be implemented in this environment?

  1. in active/active mode
  2. in a cluster span EtherChannel
  3. in active/passive mode
  4. in cluster interface mode

Answer(s): C



When deploying a Cisco ASA Firepower module, an organization wants to evaluate the contents of the traffic without affecting the network. It is currently configured to have more than one instance of the same device on the physical appliance.
Which deployment mode meets the needs of the organization?

  1. inline tap monitor-only mode
  2. passive monitor-only mode
  3. passive tap monitor-only mode
  4. inline mode

Answer(s): A


Reference:

https://www.cisco.com/c/en/us/td/docs/security/asa/asa910/configuration/firewall/asa-910- firewall-config/access-sfr.html

Inline tap monitor-only mode (ASA inline)--In an inline tap monitor-only deployment, a copy of the traffic is sent to the ASA FirePOWER module, but it is not returned to the ASA. Inline tap mode lets you see what the ASA FirePOWER module would have done to traffic, and lets you evaluate the content of the traffic, without impacting the network. However, in this mode, the ASA does apply its policies to the traffic, so traffic can be dropped due to access rules, TCP normalization, and so forth.



Page 4 of 66



Post your Comments and Discuss Cisco® 300-710 exam with other Community members:

Neo commented on October 10, 2024
Gets easier as you go along
SOUTH AFRICA
upvote

Neo commented on October 10, 2024
Need more practice
SOUTH AFRICA
upvote

Violet commented on October 10, 2024
Need more practice
SOUTH AFRICA
upvote

Neo commented on October 10, 2024
Challenging
SOUTH AFRICA
upvote

Kopano commented on October 10, 2024
Prep going well
SOUTH AFRICA
upvote

Neo commented on October 10, 2024
Happy with the material
SOUTH AFRICA
upvote

Emily commented on October 09, 2024
A bit challe
SOUTH AFRICA
upvote

Emily commented on October 09, 2024
grt resource
SOUTH AFRICA
upvote